|
Julian Anastasov wrote:
> So, now you can send packets in form DIP->VIP to real
> servers (DR method)? I'm wondering how your patched director accepts
> packets from real server in the form VIP->DIP.
Is this the martian modification case? (director as default gw for LVS-DR?)
or LVS-NAT
> Linux has source
> address validation and you can not disable it for packets with
> saddr=local_ip
>
> > ip rule add prio 100 fwmark 2 table 100
> > ip route add local 0/0 dev lo table 100
> >
> > and now my fwmark-based LVS-DR director does the job for clients and for
> > itself. To make LVS-NAT work, we'd also need to be able to choose the
> > masqueraded source address, which would be a much longer diff. I
> > didn't try LVS-Tun, but that would probably be workable like LVS-DR.
>
> I see that you can remove the limitation when sending
> packets but how do you accept the replies?
Is this the same problem?
> May be you do not have the VIP configured as IP address?
Joe
--
|
